Privilege Reference

• Manage the organization usage analytics data:

  • Add and delete test usage analytics data in the account

  • Edit, get, delete, and disable the organization account

• Define IP addresses whose events are flagged as internal

• Administrators

• API keys

• View reports (see Manage Usage Analytics Reports)

• View dimensions (see Manage Dimensions on Custom Metadata)

• View named filters (see Manage Named Filters)

• View permission filters (see Manage Permission Filters)

• View usage analytics data exports (see Manage Data Exports)

• Analytics managers

• Analytics viewers

• Relevance managers

• View reports (see Manage Usage Analytics Reports)

• View dimensions (see Manage Dimensions on Custom Metadata)

• View named filters (see Manage Named Filters)

• View permission filters (see Manage Permission Filters)

• View usage analytics data exports (see Manage Data Exports)

• Send analytics events to Coveo UA (see Manage API Keys)

View and download usage analytics data exports containing clicks, groups, keywords, searches, and custom events meeting the specified criteria for a specific date range (see Manage Data Exports)

• Add, edit, or delete analytics data exports from the specified user visits (see Manage Data Exports)

• Review user visits (see Review User Visits With the Visit Browser)

• Administrators

• Analytics managers

• Analytics viewers

• Relevance managers

• View and export usage analytics data through the Snowflake Reader Account

• View Snowflake reader account monthly credit consumption

• Administrators

• Analytics managers

• Analytics viewers

• Relevance managers

• Add or edit Snowflake reader accounts

• Add or block IP addresses

• Share Data with other Snowflake accounts

• Administrators

• Analytics managers

• Relevance managers

• Administrators

• API keys

• View dimensions (see Manage Dimensions on Custom Metadata)

• View reports (see Manage Usage Analytics Reports)

• View named filters (see Manage Named Filters)

• View permission filters (see Manage Permission Filters)

Add, edit, or delete dimensions created by Coveo organization members (see Manage Dimensions on Custom Metadata)

• Administrators

• Analytics managers

Allow a custom process or bot to push usage analytics events with different identities

• Administrators

• API keys

View incoherent events (see Review Incoherent Usage Analytics Events)

Administrators

Add, edit, or delete named filters (see Manage Named Filters)

• Administrators

• Analytics managers

• Relevance managers

View permission filters restricting the usage analytics data that analysts can review in reports (see Manage Permission Filters)

• Analytics viewers

• Analytics managers

• Relevance managers

Add, edit, or delete permission filters (see Manage Permission Filters)

Administrators

View usage analytics reports (see Review and Manage Dashboards and Review and Manage Explorers)

Add, edit, or delete usage analytics reports (see Manage Usage Analytics Reports)

• Administrators

• Analytics managers

• Relevance managers

View advanced reports

Administrators

View all reports, regardless of report accesses (see Manage Access to Usage Analytics Reports). Members that don't have this access level can only review the reports they're explicitly allowed to access.

• Administrators

• Analytics managers

View catalogs and catalog configuration.

Add, edit, or delete catalogs.

• Administrators
• Content managers

• Access the Crawling Modules (platform-eu | platform-au) page (see Monitor the Crawling Module).

• When you create or edit a source, this privilege allows you to select the Crawling Module instance responsible for crawling this source.

• Content managers¹
• Users¹

• Administrators²

• API keys

View the code and usage statistics of available extensions assigned to sources. This is especially useful when troubleshooting cases such as item indexing issues (see Manage Extensions).

Add code snippets to apply transformations to included items such as adding or modifying metadata (see Add or Edit Indexing Pipeline Extensions). We recommend that you grant this privilege to developers only.

• Administrators

• Content managers

View fields and field configuration (see Manage Fields)

• Add, edit, or delete fields (see Manage Fields)

• Add, update, or delete fields in batches (see Creating Fields)

• Administrators

• API keys

• Content managers

• In the Sources pages, see in which index the content of each source is stored (see Manage Your Organization Indexes)
• When adding a source, select the index in which the retrieved content will be stored

Required to use an upcoming feature. Granting this access level to groups of users doesn't give them any additional capabilities yet.

• Administrators
• Content managers

• View security identity provider update status, statistics, and refresh schedule (see Manage Security Identities)

• View security identity provider references such as provider IDs and the sources that use each provider (see Review Additional Statistics)

• View the permissions and effective permissions on Coveo organization items (see Review Item Properties)

• View security identities and their status inside each security provider

Only required by certain API calls (e.g., enable all disabled entities in security cache). Granting this access level to groups of users doesn't give them any additional capabilities.

Administrators

• View security identity provider update status, statistics, and refresh schedule (see Manage Security Identities)

• View security identity provider references such as provider IDs and the sources that use each provider (see Review Additional Statistics)

• View security identities and their status inside each security provider

• Refresh security identity providers (see Refresh a Security Identity Provider and Refresh All Security Identities)

• Edit security identity provider refresh schedules

• Edit a security identity provider

Administrators

• View all sources (see Manage Sources)

• View configuration of all sources

• View all source logs (see Log Browser)

• Subscribe to source notifications (see User Notifications)

Users

• View source (see Manage Sources)

• View source configuration

• View source logs (see Log Browser)

• Subscribe to source notifications (see User Notifications)

• Edit or delete specific sources (see Add or Edit a Source)

• Schedule source updates

• Edit specific source mappings (see Manage Source Mappings)

• Launch, pause, resume, and cancel specific source updates (see Refresh, Rescan, or Rebuild Sources)

• Use the push API to send content to Coveo (see Use the Push API)

• Subscribe to source notifications (see User Notifications)

• Add sources

• Edit or delete all sources

• Edit all source refresh schedules (see Schedule a Source Update)

• Edit all source mappings (see Manage Source Mappings)

• Launch, pause, resume, and cancel all source updates (see Refresh, Rescan, or Rebuild Sources)

• Use the push API to send content to Coveo (see Use the Push API)

• Subscribe to source notifications (see User Notifications)

• Administrators

• Content managers

Inspect the resources available to create content-based Coveo Machine Learning models.

• Administrators

• Relevance managers

View Coveo Machine Learning models

Add, edit, or delete machine learning models, and therefore optimize search results relevance and search experience in general (see Manage Machine Learning Models).

• Administrators

• Relevance managers

View the Coveo Machine Learning user profile made for each user or visitor ID

Edit the Coveo Machine Learning user profile made for each user or visitor ID

Administrators

View in read-only mode the configuration of all API keys (see Manage API Keys).

• Content managers

• Relevance managers

View in read-only mode the configuration of specific API keys (see Manage API Keys).

Edit, delete, activate, and disable specific API keys (see Manage API Keys and Custom Access Level)

Add, edit, delete, activate, and disable all API keys (see Manage API Keys and Custom Access Level)

Administrators

View all organization activities (see Review All Events Related to Coveo Administration Console Resources)

• Content managers

• Relevance managers

Send custom activities to Coveo (see Add or Edit a Push Source)

• Administrators

• API keys

• View index status (see Index Status)

• View index details (see Review Index Details)

• Add an index (see Add an Index)

• Edit the JSON configuration of an index (see Edit an Index JSON Configuration)

Administrators

Access the list of available critical updates

Enable/disable critical updates in the organization

• View all groups, including their privileges (see Manage Groups)

• View organization members (see Manage Members)

Analytics managers

View groups, including their privileges (see Manage Groups)

• Content managers

• Relevance managers²

• Copy, edit, or delete groups and members (see Duplicate a Group, Edit a Group, and Delete a Group)
• Edit group member privileges (see Privileges Tab)
• Send invitations to users (see Create a New Group and Manage Members)

• Relevance managers²

• Copy, edit, or delete all groups and their members (see Duplicate a Group, Edit a Group, and Delete a Group)
• Edit privileges of all groups (see Privileges Tab)
• Send invitations to users (see Create a New Group and Manage Members)

Administrators

Validate a resource snapshot

Synchronize snapshot resources

Administrators

View organization notifications (see Manage Notifications)

Edit and delete organization notifications (see Manage Notifications)

Administrators

• Administrators¹
• API keys

• Access the Coveo Administration Console¹ (see Minimum Privilege and Coveo Administration Console)

  Without the View access level, an organization member gets the following message when trying to log in to the Administration Console (see Logging in to Coveo):

  Insufficient Privileges - You currently have insufficient privileges to access the Coveo Administration Console of the [OrganizationName] organization. Contact an administrator of the [OrganizationName] organization to change your privileges, or select an organization to which you have access through the Coveo Administration Console.

• View the Coveo license details and limits, as well as the organization basic information

• Analytics managers

• Analytics viewers

• Content managers

• Relevance managers

• Users

• Edit the organization display name and contact email

• Allow Coveo Professional Services access to the organization

• Delete the organization

Administrators

• View the snapshots in the organization
• Validate a snapshot

• Create a snapshot
• Send a snapshot to a different organization
• Apply a snapshot
• Delete a snapshot

• Administrators
• Analytics managers
• Content managers
• Relevance managers

For organization members and API keys to send queries and get search results in search pages connected to their Coveo organization (see Searching With Coveo)

• Administrators

• API keys

• Content managers

• Relevance managers

• Users

Obtain a search token for a search interface that replicates a permission system to perform queries with the end-user identity and return only results the user is authorized to see.

• Administrators

• API keys

Manage authentication for sources that index permissions, such as when they're secured with SharePoint claims-based identities

• Administrators

• API keys

In your consumption dashboard, download a list of the queries performed in a hub during a certain month

Administrators

• View query pipelines (see What's a Query Pipeline? and Manage Query Pipelines)

• View query pipeline rules

• View query pipeline rule conditions (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• View A/B tests (see Manage A/B Tests)

• View query pipeline (see What's a Query Pipeline? and Manage Query Pipelines)

• View query pipeline rules

• View query pipeline rule condition (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• View A/B test (see Manage A/B Tests)

• Edit or delete specific query pipelines (see What's a Query Pipeline? and Manage Query Pipelines)

• Edit or delete specific query pipeline rules (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Edit or delete specific query pipeline rule conditions (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Edit or delete specific A/B tests (see Manage A/B Tests)

Optimize results relevance and search experience in general:

• Add, edit, or delete all query pipelines (see What's a Query Pipeline? and Manage Query Pipelines)

• Add, edit, or delete all query pipeline rules (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Add, edit, or delete all query pipeline rule conditions (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Add, edit, or delete all A/B tests (see Manage A/B Tests)

• Administrators

• Relevance managers

Link a Coveo organization to a Salesforce organization that uses a Salesforce index

Access the search pages hosted by the Coveo organizations of which a user is a member

Users

• Add or delete hosted search pages

• Edit hosted search pages, i.e.,

  • Customize classic search page interfaces

  • Edit search page configurations

Browse all the content of a Coveo organization index, and therefore be able to troubleshoot search issues (see Inspect Items With the Content Browser)